$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft File: 34pOYRe8o2iUDWjphUeYuWZgndQ.mft (raw, json) Hash identifier: T91jiLJw98zP2jKCBzO6nfpc0eVBJ3NK0D4Cbz4g6gc= Subject key identifier: BA:A2:E3:F5:78:27:87:9E:91:42:83:9E:D5:00:F6:CC:B6:63:74:D8 Authority key identifier: DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 Certificate issuer: /CN=A91C8530/serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Certificate serial: 0910 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft Manifest number: 0908 Signing time: Thu 18 Sep 2025 20:34:46 +0000 Manifest this update: Thu 18 Sep 2025 20:34:46 +0000 Manifest next update: Thu 25 Sep 2025 20:34:46 +0000 Files and hashes: 1: 34pOYRe8o2iUDWjphUeYuWZgndQ.crl (hash: A0brm3IpYljXtJp2TpNZyUW+bAtDN63U/PmvxBraGuA=) 2: 9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa (hash: ASBYl23bkyFf4r9vJSPXkAo/YYzd1cAPrmJW3FNKskU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2320 (0x910) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8530, serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Validity Not Before: Sep 18 20:34:46 2025 GMT Not After : Sep 25 20:34:46 2025 GMT Subject: CN=68cc6ce6-57a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:95:9a:27:25:1f:ab:a8:de:93:25:30:ea:c9: 10:5a:a2:7a:65:27:41:93:f0:ba:fa:53:8f:1f:a7: 7d:12:e9:29:7a:38:9c:77:e2:43:5a:ae:6a:71:65: 9d:6a:17:2d:d3:87:45:80:d0:38:d3:1f:eb:2a:26: 50:99:f2:61:4c:12:a2:23:54:0a:e4:65:15:38:45: 4e:fc:c9:b4:c4:c2:b5:82:e2:90:aa:b5:0c:40:29: cc:01:3b:e3:04:2a:d6:ec:83:90:32:1e:32:cd:b0: 3d:4c:ee:34:26:f3:03:bd:9d:ab:9f:5b:a9:70:a8: 3d:74:c9:cf:f0:d3:cf:43:b0:c3:7f:35:7d:ae:79: ff:25:e0:ff:32:58:6c:08:c2:9e:fc:1a:a3:07:00: f5:8e:d3:fa:c7:ac:fc:53:02:50:9e:17:b7:93:1b: 7d:5e:07:a8:04:3d:ad:8a:f1:6b:00:14:b1:09:85: 30:1e:fc:a7:0c:d9:f2:27:1d:2a:08:a6:a2:e7:c1: 39:c2:d6:cc:1d:69:fe:13:f1:7c:ca:11:24:2d:6b: 8b:4f:a8:6c:16:61:d0:a6:b3:3d:ba:50:89:e2:fd: 0d:6e:bd:55:cd:8f:49:1a:9c:13:2f:52:eb:d5:25: 66:40:da:d4:ac:ff:d9:60:8f:ae:0d:0f:2a:6c:a8: 30:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A2:E3:F5:78:27:87:9E:91:42:83:9E:D5:00:F6:CC:B6:63:74:D8 X509v3 Authority Key Identifier: keyid:DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:b9:ee:14:00:ae:8e:49:55:09:7c:fe:ef:db:53:59:f9:79: 61:9b:c1:34:e4:33:7f:4a:26:bb:a2:ec:80:4c:ea:6c:1b:22: 01:2f:56:e7:a1:ce:b1:29:a5:5f:8e:92:c0:4f:ac:01:e1:20: 67:54:ab:26:9d:29:9b:3a:b4:63:1f:72:68:e5:a7:78:c8:1a: 38:cd:bb:c6:85:e6:f6:45:1f:24:eb:42:28:5e:e5:93:d7:da: e6:6a:d9:0d:bc:0b:6d:be:17:6a:ca:ca:3b:11:9d:bc:a7:62: a0:91:54:5b:c8:c8:54:c8:58:44:4d:29:8e:c3:02:7b:9a:a3: c1:2e:81:e7:51:0f:e3:f1:48:93:5b:44:bc:c8:44:1b:5d:15: 28:8d:1b:67:18:f8:99:a8:38:e3:4e:ad:d1:ad:30:8d:16:37: 0b:35:9f:b5:ff:b0:12:38:2f:c5:27:08:e7:4a:b5:90:97:65: 4d:3c:ac:b4:bb:7c:41:03:25:40:b2:a6:58:86:a0:e7:d5:9a: 23:ab:d6:24:0d:ae:45:24:b2:92:42:fc:a3:72:7f:8e:6f:cf: 9a:79:0b:38:a2:12:9e:a5:07:d3:37:2d:c9:63:3e:d6:ab:a3: 12:5d:6e:01:8b:9f:c2:67:45:a2:44:52:11:c9:b3:15:6c:a6: 3e:9a:4a:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1MzAxMTAvBgNVBAUTKERGOEE0RTYxMTdCQ0EzNjg5NDBENjhFOTg1NDc5OEI5 NjY2MDlERDQwHhcNMjUwOTE4MjAzNDQ2WhcNMjUwOTI1MjAzNDQ2WjAYMRYwFAYD VQQDEw02OGNjNmNlNi01N2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJWaJyUfq6jekyUw6skQWqJ6ZSdBk/C6+lOPH6d9Eukpejicd+JDWq5qcWWd ahct04dFgNA40x/rKiZQmfJhTBKiI1QK5GUVOEVO/Mm0xMK1guKQqrUMQCnMATvj BCrW7IOQMh4yzbA9TO40JvMDvZ2rn1upcKg9dMnP8NPPQ7DDfzV9rnn/JeD/Mlhs CMKe/BqjBwD1jtP6x6z8UwJQnhe3kxt9XgeoBD2tivFrABSxCYUwHvynDNnyJx0q CKai58E5wtbMHWn+E/F8yhEkLWuLT6hsFmHQprM9ulCJ4v0Nbr1VzY9JGpwTL1Lr 1SVmQNrUrP/ZYI+uDQ8qbKgwSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqi4/V4 J4eekUKDntUA9sy2Y3TYMB8GA1UdIwQYMBaAFN+KTmEXvKNolA1o6YVHmLlmYJ3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODUzMC8xOEY2NkQ4NkIx RTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8yaVVEV2pwaFVlWXVXWmdu ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0cE9ZUmU4bzJpVURXanBoVWVZdVdaZ25kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODUzMC8xOEY2NkQ4NkIxRTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8y aVVEV2pwaFVlWXVXWmduZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaue4UAK6OSVUJfP7v21NZ+Xlhm8E05DN/Sia7ouyATOpsGyIBL1bn oc6xKaVfjpLAT6wB4SBnVKsmnSmbOrRjH3Jo5ad4yBo4zbvGheb2RR8k60IoXuWT 19rmatkNvAttvhdqyso7EZ28p2KgkVRbyMhUyFhETSmOwwJ7mqPBLoHnUQ/j8UiT W0S8yEQbXRUojRtnGPiZqDjjTq3RrTCNFjcLNZ+1/7ASOC/FJwjnSrWQl2VNPKy0 u3xBAyVAsqZYhqDn1Zojq9YkDa5FJLKSQvyjcn+Ob8+aeQs4ohKepQfTNy3JYz7W q6MSXW4Bi5/CZ0WiRFIRybMVbKY+mkow -----END CERTIFICATE-----Generated at Fri Sep 19 06:57:15 2025 by rpki-client